Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead and mentor a SOC team, manage incident response, and enhance cloud security.
- Company: Join a rapidly growing FinTech company focused on innovative cloud security solutions.
- Benefits: Enjoy a flexible, remote-first culture with opportunities for automation and growth.
- Why this job: Make a real impact in cybersecurity while shaping the future of fintech security operations.
- Qualifications: Experience in SOC leadership, GCP security, and strong scripting skills are essential.
- Other info: Opportunity to build a security function from scratch and influence architecture decisions.
The predicted salary is between 60000 - 84000 Β£ per year.
Rapidly growing FinTech company seeking an accomplished Cybersecurity Operations Manager to take full ownership of its cloud-first security operations function. This is a high-impact, hands-on leadership role with end-to-end responsibility for managing the Security Operations Centre (SOC), incident detection and response, threat intelligence, and cloud-native security engineering with a strong focus on Google Cloud Platform (GCP). Operating in a highly regulated, Real Time financial services environment, this role requires deep technical knowledge, operational maturity, and experience applying security best practices across a fast-moving cloud infrastructure.
What You'll Do
- SOC Leadership & Threat Detection
- Lead and mentor a team of SOC analysts and engineers, ensuring high-quality coverage across all GCP workloads.
- Establish and maintain 24/7 detection and response capabilities, fine-tuning alerting rules and monitoring strategies.
- Deploy and maintain detection rules using Chronicle SIEM, YARA, Sigma, and GCP-native logging tools.
- Define and maintain runbooks, incident playbooks, and escalation procedures.
- Incident Response & Threat Intelligence
- Own the full life cycle of security incidents from detection to remediation and post-incident review.
- Perform advanced threat hunting and root cause analysis across cloud workloads, Kubernetes clusters, APIs, and user activity.
- Integrate external threat intelligence feeds, aligning TTPs with the MITRE ATT&CK framework.
- Drive continuous improvement by conducting regular purple team exercises and scenario-based tabletop tests.
- Cloud Security Engineering
- Work hands-on with GCP security controls, including: Security Command Center, VPC Service Controls, IAM (Identity & Access Management), Cloud Logging and Monitoring, Workload Identity Federation.
- Automate security response using Python, Terraform, or XSOAR.
- Collaborate with infrastructure and DevOps teams to embed security into CI/CD pipelines, containers (GKE), and API services.
- Compliance & Risk Alignment
- Ensure operational alignment with PCI-DSS, ISO 27001, SOC 2, NIST, and GDPR requirements.
- Support internal and external audits with relevant security evidence and reports.
- Work closely with GRC teams to implement controls and technical safeguards for ongoing compliance.
Who You Are
A cybersecurity professional who thrives in high-velocity, cloud-native, and heavily regulated environments. Youβre both a strategist and a practitioner: able to lead people and projects, while staying hands-on with modern tools and incident response workflows. You bring both technical acumen and operational discipline, with a deep understanding of GCP security and experience protecting high-value fintech applications.
Essential Qualifications
- Experience as SOC lead, cyber operations manager, or similar role.
- Hands-on experience in securing Google Cloud Platform (GCP) environments across multiple projects/accounts.
- Strong expertise in: SIEM management (Chronicle, Splunk, Elastic), Incident response and recovery, Security orchestration (SOAR), preferably Chronicle + XSOAR, IAM, policy enforcement, logging, and access reviews in GCP.
- Proven experience working in FinTech or financial services, ideally under PCI-DSS, ISO 27001, or SOC 2.
- Strong scripting or automation experience (Python, Terraform, Bash).
- Knowledge of threat modelling and attack frameworks (MITRE ATT&CK, Kill Chain).
- Familiarity with Kubernetes (GKE), container security, API hardening.
Nice to Have
- Certifications such as: Google Professional Cloud Security Engineer, CISSP, CISM, GCIH, or GCIA.
- Experience implementing Zero Trust Architecture in a cloud-native environment.
- Familiarity with OPA/Gatekeeper, Kubernetes Admission Controllers.
- Background in red teaming or adversary simulation (MITRE Caldera, Atomic Red Team).
- Experience working with BigQuery, Data Loss Prevention (DLP) tools, and Key Management Systems (KMS).
Why This Role?
- Work directly with engineering, DevSecOps, and compliance leadership.
- Lead cybersecurity strategy and execution in a cloud-native, greenfield fintech platform.
- Influence architecture decisions at scale while keeping a hands-on role.
- Flexible, remote-first working culture with global talent.
- A chance to build a security function from the ground up, automate deeply, and scale securely.
Security Operations Manager employer: Barclay Simpson
Contact Detail:
Barclay Simpson Recruiting Team
StudySmarter Expert Advice π€«
We think this is how you could land Security Operations Manager
β¨Tip Number 1
Familiarise yourself with Google Cloud Platform (GCP) security features and tools. Since this role heavily focuses on GCP, having hands-on experience and understanding of its security controls will set you apart from other candidates.
β¨Tip Number 2
Showcase your leadership skills by discussing any previous experience in mentoring or leading teams. This role requires strong SOC leadership, so highlighting your ability to guide and develop a team will be crucial.
β¨Tip Number 3
Prepare to discuss your incident response strategies and experiences. Be ready to share specific examples of how you've handled security incidents, as this role involves owning the full lifecycle of security incidents.
β¨Tip Number 4
Stay updated on the latest trends in cybersecurity, especially those related to FinTech and cloud security. Being knowledgeable about current threats and compliance requirements will demonstrate your commitment to the field and readiness for this role.
We think you need these skills to ace Security Operations Manager
Some tips for your application π«‘
Tailor Your CV: Make sure your CV highlights relevant experience in cybersecurity operations, particularly with Google Cloud Platform (GCP). Emphasise your leadership roles and any hands-on experience you have with SOC management and incident response.
Craft a Compelling Cover Letter: In your cover letter, express your passion for cybersecurity and your understanding of the fintech landscape. Mention specific projects or achievements that demonstrate your ability to lead teams and manage security operations effectively.
Showcase Technical Skills: Clearly outline your technical skills related to SIEM management, incident response, and cloud security engineering. Include any relevant certifications and your experience with tools like Chronicle SIEM, Terraform, and Python.
Highlight Compliance Knowledge: Since the role requires knowledge of compliance frameworks, make sure to mention your experience with PCI-DSS, ISO 27001, and SOC 2. Discuss how you've implemented security controls and supported audits in previous roles.
How to prepare for a job interview at Barclay Simpson
β¨Showcase Your Technical Expertise
Be prepared to discuss your hands-on experience with Google Cloud Platform (GCP) security controls. Highlight specific projects where you've implemented security measures, and be ready to explain the tools you used, such as Chronicle SIEM or Terraform.
β¨Demonstrate Leadership Skills
As a Security Operations Manager, you'll need to lead a team. Share examples of how you've mentored SOC analysts or engineers in the past, and discuss your approach to establishing 24/7 detection and response capabilities.
β¨Prepare for Incident Response Scenarios
Expect questions about your experience with incident response and threat intelligence. Be ready to walk through the full lifecycle of a security incident you've managed, including detection, remediation, and post-incident reviews.
β¨Align with Compliance Standards
Familiarise yourself with compliance frameworks like PCI-DSS, ISO 27001, and SOC 2. Be prepared to discuss how you've ensured operational alignment with these standards in previous roles, and how you would support audits with relevant security evidence.
